Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,715
Erlang
34
GitHub Actions
28
Go
2,302
Maven
5,000+
npm
3,946
NuGet
711
pip
3,716
Pub
12
RubyGems
920
Rust
964
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,778 advisories

Loading
An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one... High Unreviewed
CVE-2022-45061 was published Nov 9, 2022
NVIDIA vGPU software for Windows and Linux contains a vulnerability in the Virtual GPU Manager ... Moderate Unreviewed
CVE-2025-23246 was published May 1, 2025
Uncontrolled Resource Consumption in Elasticsearch while evaluating specifically crafted search... Moderate Unreviewed
CVE-2024-52979 was published May 1, 2025
Possible DoS by memory exhaustion in net-imap Moderate
CVE-2025-25186 was published for net-imap (RubyGems) Feb 10, 2025
manunio nevans
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, tvOS 18... Moderate Unreviewed
CVE-2025-24251 was published Apr 29, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, tvOS 18... Moderate Unreviewed
CVE-2025-31197 was published Apr 29, 2025
Certain HP ENVY, OfficeJet, and DeskJet printers may be vulnerable to a Denial of Service attack. High Unreviewed
CVE-2022-43780 was published Dec 12, 2022
net-imap rubygem vulnerable to possible DoS by memory exhaustion Moderate
CVE-2025-43857 was published for net-imap (RubyGems) Apr 28, 2025
Masamuneee nevans
A heap-based buffer over write vulnerability was found in GhostScript's lp8000_print_page()... High Unreviewed
CVE-2020-27792 was published Aug 20, 2022
Certain HP PageWide Pro Printers may be vulnerable to a potential denial of service attack. High Unreviewed
CVE-2022-2794 was published Dec 12, 2022
GraphQL Armor Cost-Limit Plugin Bypass via Introspection Query Obfuscation Moderate
GHSA-733v-p3h5-qpq7 was published for @escape.tech/graphql-armor-cost-limit (npm) Apr 25, 2025
M0ngi EvertEt
A potential security vulnerability has been identified for certain HP multifunction printers ... Critical Unreviewed
CVE-2021-3821 was published Dec 12, 2022
Apereo CAS has inefficient regular expression complexity Moderate
CVE-2025-3986 was published for org.apereo.cas:cas-server-core-configuration-metadata-repository (Maven) Apr 27, 2025
Undertow Uncontrolled Resource Consumption Vulnerability High
CVE-2024-1635 was published for io.undertow:undertow-core (Maven) Feb 20, 2024
The multiScan and picoScan are vulnerable to a denial-of-service (DoS) attack. A remote attacker... Moderate Unreviewed
CVE-2025-32472 was published Apr 28, 2025
Excessive Platform Resource Consumption within a Loop when unmarshalling Compose file having recursive loop Moderate
CVE-2024-10846 was published for github.com/compose-spec/compose-go/v2 (Go) Jan 21, 2025
ahollmann idsulik
thaJeztah glours gbrindisi
A vulnerability has been found in scipopt scip up to 9.2.1 and classified as problematic.... Moderate Unreviewed
CVE-2025-4001 was published Apr 28, 2025
A vulnerability was found in Apereo CAS 5.2.6. It has been classified as problematic. This... Moderate Unreviewed
CVE-2025-3985 was published Apr 27, 2025
There is a code-related vulnerability in the GoldenDB database product. Attackers can access... High Unreviewed
CVE-2025-46580 was published Apr 27, 2025
A vulnerability was found in GL.iNet GL-A1300 Slate Plus, GL-AR300M16 Shadow, GL-AR300M Shadow,... Moderate Unreviewed
CVE-2025-2811 was published Apr 26, 2025
systemd 250 and 251 allows local users to achieve a systemd-coredump deadlock by triggering a... Moderate Unreviewed
CVE-2022-45873 was published Nov 24, 2022
IBM QRadar WinCollect Agent 10.0 through 10.1.2 could allow a privileged user to cause a denial... Moderate Unreviewed
CVE-2022-43880 was published Mar 3, 2024
A vulnerability was found in openvswitch. A limitation in the implementation of userspace packet... High Unreviewed
CVE-2020-35498 was published May 24, 2022
qubes-mirage-firewall (aka Mirage firewall for QubesOS) 0.8.x through 0.8.3 allows guest OS users... High Unreviewed
CVE-2022-46770 was published Dec 7, 2022
The web browser on the Sony PLAYSTATION 3 (PS3) allows remote attackers to cause a denial of... High Unreviewed
CVE-2009-2541 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database